Out-of-Bounds Read in macOS Affects Apple Products
CVE-2026-28832

8.4HIGH

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 25 March 2026

What is CVE-2026-28832?

An out-of-bounds read vulnerability in macOS could potentially allow an application to disclose sensitive kernel memory. This flaw highlights the importance of timely system updates to safeguard user data. Apple has released patches in their latest macOS versions to address this issue, emphasizing improved bounds checking to prevent unauthorized memory access. Users are strongly encouraged to update their systems to the latest versions to mitigate potential risks.

Affected Version(s)

macOS 0 < 14.8.5

macOS 0 < 15.7.5

macOS 0 < 26.4

References

https://support.apple.com/en-us/126794

https://support.apple.com/en-us/126795

https://support.apple.com/en-us/126796

CVSS V3.1

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 25, 2026
Vulnerability Reserved
Mar 3, 2026

CVE-2026-28832 Data

JSON